Jul 01 2020
- last edited on
Jul 24 2020
I apologise if this doesn't question doesn't belong here, but this was where I was directed here by MS Support and the Office 365 forum.
We are looking at disabling Legacy Authentication and enabling Modern Authentication in our tenant.
I'm assuming that this will apply to all Applications in Azure AD, including the Apps we've set up for SSO to 3rd party sites?
What I am trying to figure out is:
1. How do I get a list of which applications are currently using Legacy Authentication without having to open each App individually and checking the settings?
2. If I was to enable Modern Auth and disable Legacy Auth at the tenant level, what sort of experience will our users see? Will things stop working, will they see different login prompts, will there be additional prompts?
3. What will happen to Apps that do not support Modern Auth? I'm assuming these will just stop working, unless we allow Legacy Auth just for them?
Thanks for any assistance in these areas.
Jul 02 2020 02:39 AM
If you look at you user sign ins over the last 30 days in the Azure portal you can filter by access using legacy auth clients.
If you disable legacy auth, access won't be granted to anything using those clients, i.e native Android mail client to access Exchange Online will stop.
Jul 02 2020 11:12 AMSolution
Jul 07 2020 12:36 AM
We will enable modern and slowly disable Legacy apps and test at each step.
The main objective was to minimise user complaints, and alert them to any change in processes.
We'll send them a general email to inform that they may possibly notice some changes in login prompts.